Domains / Security and Compliance /

Capability Heatmap

Capability Assessment

Business capability maturity and sourcing assessment for Security and Compliance

3
Capabilities
0
Mature (Excellent/Good)
2
In-House
3
Realizing Components
Capability Heatmap
Excellent
Good
Developing
Initial
Audit and Compliance
Developing
active in-house
Owner: Security Team
Audit and Compliance
Data Privacy
Developing
active in-house
Owner: Security Team
Data Privacy Controls
Identity and Access Management
Developing
active hybrid
Owner: Security Team
Identity and Access Management
Capability Summary
Capability Maturity Lifecycle Sourcing Size Realized By
Audit and Compliance
The ability to capture, store, and query a tamper-evident record of all security-relevant events, and to produce compliance evidence packages.
Developing active in-house m Audit and Compliance
Data Privacy
The ability to enforce data subject rights (access, portability, erasure), apply data minimization policies, and manage consent records in compliance with GDPR and similar regulations.
Developing active in-house m Data Privacy Controls
Identity and Access Management
The ability to manage user identities, authenticate users, and enforce authorization policies across all platform resources.
Developing active hybrid l Identity and Access Management